0d635fdc93ad628d92681aad889de04a269205225dca1e7774bd55b76c2239b1

Sharing

Copy URL Twitter E-mail

General

Target

0d635fdc93ad628d92681aad889de04a269205225dca1e7774bd55b76c2239b1
Size

84KB
MD5

56ecb8cf7f78683dd7ac7b5990d85f16
SHA1

9fba7a4a4795cd6278898e0d809367af99895dd6
SHA256

0d635fdc93ad628d92681aad889de04a269205225dca1e7774bd55b76c2239b1
SHA512

eb2b1fd5ae977324eb88aecfd396de347e4cf0274bd781ea3150e505b5c0557373e648e6c7e7847c764ee9a52fa99411061c6d89d07b9f71e0b2948a2a1161df
SSDEEP

1536:/+6r9b8n8B5SMM65UY11Ot+YULZHGWMobetlnOd6i3:G6RXB5SM/C0GGZmWMoK0x

Score

N/A

Malware Config

Signatures

Files

0d635fdc93ad628d92681aad889de04a269205225dca1e7774bd55b76c2239b1
.dll windows x86

73f57ff3ca11a57eaa14c54e1da9350d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
FindNextVolumeW
IsBadHugeReadPtr
PostQueuedCompletionStatus
SetCommState
PulseEvent
GetTempFileNameA
CreateNamedPipeW
ExpandEnvironmentStringsW
GetFileAttributesExA
GlobalFree
GetStartupInfoW
GetSystemDefaultUILanguage
DeleteCriticalSection
WriteFileEx
FindAtomW
GetSystemWow64DirectoryW
SetFileAttributesA
GetFullPathNameW
FindResourceA
TransmitCommChar
OpenProcess
lstrcmpW
OpenFile
FindResourceExW
GetProcessVersion
GetDateFormatA
GetShortPathNameA
GetSystemDefaultLangID
TransactNamedPipe
HeapCreate
SetConsoleCursorPosition
DeleteFileW
CreateEventA
VerSetConditionMask
GetTimeZoneInformation
ReadConsoleInputA
LCMapStringW
SetMailslotInfo
FreeConsole
GetComputerNameExW
ClearCommError
FindVolumeMountPointClose
GetCommandLineW
GetSystemTime
WriteProfileStringA
lstrcpyW
DeleteVolumeMountPointW
GetUserDefaultLangID
OpenFileMappingW
GetShortPathNameW
SetCurrentDirectoryW
IsDBCSLeadByteEx
SystemTimeToTzSpecificLocalTime
EnumSystemLocalesA
HeapSize
GetFileAttributesExW
SleepEx
CreateIoCompletionPort
WaitForSingleObjectEx
CreateFileW
GetCurrentDirectoryA
OpenMutexW
GetFileAttributesW
GetNumberOfConsoleInputEvents
GetThreadContext
GlobalAddAtomW
DeleteTimerQueueTimer
GetLastError
GetUserDefaultLCID
CreateDirectoryA
VirtualQuery
GetComputerNameA
HeapAlloc
WaitForSingleObject
GetSystemDirectoryA
WriteFile
GetTickCount
Sleep
GetProcessHeap
UnmapViewOfFile
SetLastError
GetProcAddress
CreateProcessA
GetModuleHandleA
LoadLibraryA
InterlockedIncrement
InitializeCriticalSectionAndSpinCount
FormatMessageW

ole32

CreateBindCtx
StgOpenStorageOnILockBytes
CoGetClassObject
CoRegisterMessageFilter
OleLockRunning
StgCreateDocfileOnILockBytes
OleCreate
CoGetObjectContext
OleSave
CoCreateGuid
CreateOleAdviseHolder
CoGetMarshalSizeMax
CoRevertToSelf
CoTaskMemFree

user32

SetMenuItemInfoW
GetDCEx
SetMenu
UpdateWindow
GetAsyncKeyState
IntersectRect
GetDlgCtrlID
EnumWindows
EnumDisplaySettingsW
LoadAcceleratorsW
UnregisterClassA
InvertRect
IsRectEmpty
InSendMessage
RegisterWindowMessageW
GetThreadDesktop
CharNextExA
CharUpperBuffA
GetDlgItemInt
ShowWindow
GetIconInfo
InvalidateRect
PeekMessageW
ExitWindowsEx
MessageBoxW
GetCursor
GetPropA
CharLowerBuffW
InsertMenuW
wsprintfA
GetUpdateRgn
FreeDDElParam
CreateDialogIndirectParamW
DialogBoxIndirectParamA
HideCaret
SubtractRect
EndDeferWindowPos
CharToOemA
OemToCharA
UnregisterHotKey
TrackMouseEvent
IsDialogMessageA
GetSubMenu
MessageBoxExW
GetWindowLongA
GetSystemMetrics
GetAncestor
GetPropW
BringWindowToTop
DrawTextExW
SetMenuDefaultItem
SetProcessWindowStation
SendMessageTimeoutW
GetWindowWord
GetMonitorInfoW
DialogBoxIndirectParamW
BeginPaint
GetMenu
IsChild
MessageBeep
MonitorFromWindow
GetKeyNameTextW
MsgWaitForMultipleObjects
CreateIconFromResourceEx
EndTask
MessageBoxA
GetWindowTextW
GetMenuStringA
GetWindowLongW
MapVirtualKeyExW
GetClassNameA
TranslateMessage
SetTimer
GetWindowThreadProcessId
SendMessageA
CreateWindowExA
TabbedTextOutW

oleaut32

SysAllocString

shlwapi

StrStrW
StrStrIA
StrCpyNW
PathCreateFromUrlW
PathFindExtensionA
SHCreateStreamOnFileW
StrCmpW
PathGetCharTypeW
StrChrIW
SHRegSetPathW
StrCmpIW
AssocCreate
PathStripToRootW
UrlCombineW
PathAddBackslashW
StrToIntW
SHSetValueA
PathIsDirectoryW
StrToIntExW
StrStrIW
UrlUnescapeW
PathGetArgsW
PathRemoveFileSpecW
PathIsRootW
StrStrA
PathSetDlgItemPathW
PathGetCharTypeA

advapi32

RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
ChangeServiceConfigW
RegEnumKeyExW
GetAclInformation
RegCreateKeyW
RegRestoreKeyA
CredDeleteW
CredUnmarshalCredentialW
SetEntriesInAclA
RegNotifyChangeKeyValue
EnumServicesStatusA
QueryServiceConfigA
RegFlushKey
QueryServiceConfigW
DuplicateTokenEx
DeregisterEventSource
MapGenericMask
LogonUserA
ImpersonateLoggedOnUser
CredIsMarshaledCredentialW
GetServiceDisplayNameW
QueryServiceStatus
CreateServiceA
ControlService
RegQueryValueA
CredWriteDomainCredentialsW
ReportEventW
ChangeServiceConfigA

gdi32

DeleteMetaFile
GetFontResourceInfoW
CreateFontIndirectW
SetBkMode
SetPaletteEntries
EnumFontFamiliesExA
ExtCreateRegion
SetTextColor
GetBkMode
ResizePalette
CreateBrushIndirect
GetBrushOrgEx
GetCharWidthW
TextOutW
SetDIBColorTable
CopyMetaFileA
GetGlyphOutlineA
SetMapMode
GetTextColor
SetArcDirection
CreateDIBSection
GetCharWidth32W
ExtTextOutA
CreateDIBitmap
SetBrushOrgEx
CombineRgn
FillPath
ScaleViewportExtEx
GetPixel
CreatePalette
UpdateColors
PolylineTo
CreateRectRgnIndirect
RealizePalette
WidenPath
AbortPath
CreateMetaFileW
AnimatePalette
CreateFontIndirectA
StartDocA
SetMetaRgn

Exports

Exports

ClipMapTrust

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73f57ff3ca11a57eaa14c54e1da9350d

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB